This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/e2be5c-0e67-4f82-97c2-105d8002149d/1/e8e-Uh0XpqWSzGH3kUwl8WlXzJw.mft File: e8e-Uh0XpqWSzGH3kUwl8WlXzJw.mft (raw, json) Hash identifier: 0KFTJGfW6DfB4M9pLTQd5Mga80OM7JbthVX+GykzI4E= Subject key identifier: 93:07:AC:8F:71:36:CE:2B:77:0A:9A:4F:FD:69:7D:31:61:E7:EA:05 Authority key identifier: 7B:C7:BE:52:1D:17:A6:A5:92:CC:61:F7:91:4C:25:F1:69:57:CC:9C Certificate issuer: /CN=7bc7be521d17a6a592cc61f7914c25f16957cc9c Certificate serial: 019B59771EA03CBFD97DDBD2FF540D72BB06 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e8e-Uh0XpqWSzGH3kUwl8WlXzJw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/e2be5c-0e67-4f82-97c2-105d8002149d/1/e8e-Uh0XpqWSzGH3kUwl8WlXzJw.mft Manifest number: 0753 Signing time: Fri 26 Dec 2025 07:02:17 +0000 Manifest this update: Fri 26 Dec 2025 07:02:17 +0000 Manifest next update: Sat 27 Dec 2025 07:02:17 +0000 Files and hashes: 1: e8e-Uh0XpqWSzGH3kUwl8WlXzJw.crl (hash: am1PURHOM/Tj7op+CviYAfkG+p+jonX0ExvjDL4K3RU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/e2be5c-0e67-4f82-97c2-105d8002149d/1/e8e-Uh0XpqWSzGH3kUwl8WlXzJw.crl rsync://rpki.ripe.net/repository/DEFAULT/a2/e2be5c-0e67-4f82-97c2-105d8002149d/1/e8e-Uh0XpqWSzGH3kUwl8WlXzJw.mft rsync://rpki.ripe.net/repository/DEFAULT/e8e-Uh0XpqWSzGH3kUwl8WlXzJw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:77:1e:a0:3c:bf:d9:7d:db:d2:ff:54:0d:72:bb:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7bc7be521d17a6a592cc61f7914c25f16957cc9c Validity Not Before: Dec 26 07:02:17 2025 GMT Not After : Dec 27 07:02:17 2025 GMT Subject: CN=9307ac8f7136ce2b770a9a4ffd697d3161e7ea05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:6c:f1:fb:4d:bb:20:dd:8a:fb:2b:e8:4f:4d: 0a:42:39:16:cc:48:6d:c3:22:aa:b2:2c:02:60:ae: e7:ac:27:5e:37:a6:12:6f:43:0a:88:0b:d0:d3:ce: 62:72:8c:2a:4a:ec:cd:11:95:76:1a:9d:fa:38:92: 32:66:3a:7e:69:e0:64:cb:e6:7d:0d:f7:ec:fd:ea: b0:29:00:e9:67:6d:16:90:df:c0:09:e8:8e:7c:b3: 52:7d:a7:cc:e3:64:91:0b:90:30:f6:81:5b:6b:96: bf:f1:9f:7f:e0:19:a6:55:23:4d:ab:81:b2:39:a9: 3c:d3:79:69:48:bf:fc:11:09:cd:a2:f6:dc:de:e8: 51:2a:68:19:d8:25:b8:c3:7f:3e:c6:be:d0:6b:ba: 0d:d7:66:e7:c1:aa:52:55:9e:77:24:d1:61:f5:fc: d2:3e:2b:63:10:6c:cf:96:cd:7a:94:dd:e8:12:60: 29:dc:22:bd:03:fc:4e:7d:7a:20:2b:7f:67:c7:4a: 07:fe:18:ea:98:7d:9c:a1:62:0e:87:4d:1b:af:17: 86:f7:fe:5e:20:fb:1c:e7:84:34:d6:36:25:aa:e8: 74:6c:cb:82:e5:1e:d4:5f:d1:a3:79:4c:18:57:58: 06:29:a6:93:51:d5:a8:6b:3a:ce:67:e3:72:b3:78: 62:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:07:AC:8F:71:36:CE:2B:77:0A:9A:4F:FD:69:7D:31:61:E7:EA:05 X509v3 Authority Key Identifier: keyid:7B:C7:BE:52:1D:17:A6:A5:92:CC:61:F7:91:4C:25:F1:69:57:CC:9C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8e-Uh0XpqWSzGH3kUwl8WlXzJw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/e2be5c-0e67-4f82-97c2-105d8002149d/1/e8e-Uh0XpqWSzGH3kUwl8WlXzJw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/e2be5c-0e67-4f82-97c2-105d8002149d/1/e8e-Uh0XpqWSzGH3kUwl8WlXzJw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a1:3c:26:b7:43:fc:b5:30:d7:c1:cf:55:86:00:0d:6b:c4:c3: f8:30:b2:af:bc:01:8c:2c:e1:7d:19:b4:0a:bf:0a:f3:43:bf: f4:bf:48:99:5f:07:91:30:0b:05:60:64:54:1d:38:57:fa:22: c1:e7:4a:be:27:46:a3:9b:13:c4:23:80:02:84:1d:60:9d:0c: 7c:e6:22:06:3e:43:46:26:92:99:cf:5e:5c:fb:13:52:a5:66: 1e:ef:48:f8:2b:e5:c5:9d:91:52:3b:bb:a6:77:8e:3d:19:6e: 7e:39:fc:33:ca:1e:45:c0:57:64:68:5a:fb:63:c5:8a:d1:71: 69:ba:7c:9c:75:ae:2c:3b:c4:0c:e0:0a:3e:a5:cd:d7:80:96: 64:8d:f3:c3:56:59:b8:47:09:d2:a4:5a:a3:df:40:d2:38:4a: d4:73:76:87:99:8d:0a:96:54:ae:15:64:8f:97:19:41:3c:b9: d9:ed:a2:28:3b:25:c3:db:97:21:ca:88:24:aa:60:6b:b8:07: 9c:43:a9:73:1f:44:5c:b8:0a:7c:c4:40:f9:d6:c5:c9:39:b9: 1d:ff:ed:fe:be:1c:a8:d7:43:3f:0d:58:9c:ab:dc:5c:a0:e2: 7e:1f:31:c9:13:c3:32:10:a8:ee:e9:1f:c1:8b:dd:7e:60:b8: 48:51:4e:59 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtZdx6gPL/ZfdvS/1QNcrsGMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdiYzdiZTUyMWQxN2E2YTU5MmNjNjFmNzkxNGMyNWYxNjk1 N2NjOWMwHhcNMjUxMjI2MDcwMjE3WhcNMjUxMjI3MDcwMjE3WjAzMTEwLwYDVQQD Eyg5MzA3YWM4ZjcxMzZjZTJiNzcwYTlhNGZmZDY5N2QzMTYxZTdlYTA1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA02zx+027IN2K+yvoT00KQjkWzEht wyKqsiwCYK7nrCdeN6YSb0MKiAvQ085icowqSuzNEZV2Gp36OJIyZjp+aeBky+Z9 Dffs/eqwKQDpZ20WkN/ACeiOfLNSfafM42SRC5Aw9oFba5a/8Z9/4BmmVSNNq4Gy Oak803lpSL/8EQnNovbc3uhRKmgZ2CW4w38+xr7Qa7oN12bnwapSVZ53JNFh9fzS PitjEGzPls16lN3oEmAp3CK9A/xOfXogK39nx0oH/hjqmH2coWIOh00brxeG9/5e IPsc54Q01jYlquh0bMuC5R7UX9GjeUwYV1gGKaaTUdWoazrOZ+Nys3hiVwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJMHrI9xNs4rdwqaT/1pfTFh5+oFMB8GA1UdIwQY MBaAFHvHvlIdF6alksxh95FMJfFpV8ycMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZThlLVVoMFhwcVdTekdIM2tVd2w4V2xYekp3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMi9lMmJlNWMtMGU2Ny00ZjgyLTk3YzIt MTA1ZDgwMDIxNDlkLzEvZThlLVVoMFhwcVdTekdIM2tVd2w4V2xYekp3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMi9lMmJlNWMtMGU2Ny00ZjgyLTk3YzItMTA1ZDgwMDIxNDlk LzEvZThlLVVoMFhwcVdTekdIM2tVd2w4V2xYekp3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAoTwmt0P8 tTDXwc9VhgANa8TD+DCyr7wBjCzhfRm0Cr8K80O/9L9ImV8HkTALBWBkVB04V/oi wedKvidGo5sTxCOAAoQdYJ0MfOYiBj5DRiaSmc9eXPsTUqVmHu9I+CvlxZ2RUju7 pneOPRlufjn8M8oeRcBXZGha+2PFitFxabp8nHWuLDvEDOAKPqXN14CWZI3zw1ZZ uEcJ0qRao99A0jhK1HN2h5mNCpZUrhVkj5cZQTy52e2iKDslw9uXIcqIJKpga7gH nEOpcx9EXLgKfMRA+dbFyTm5Hf/t/r4cqNdDPw1YnKvcXKDifh8xyRPDMhCo7ukf wYvdfmC4SFFOWQ== -----END CERTIFICATE-----Generated at Fri Dec 26 14:15:58 2025 by rpki-client